Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

a482b141cc...89.exe

windows7-x64

7

a482b141cc...89.exe

windows10-2004-x64

7

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489.exe

  • Size

    589KB

  • Sample

    240903-cn5dpawaqc

  • MD5

    5176284ccdb6245cc137f00fe91fb654

  • SHA1

    26df9fc2dd605de3d9934d2425c032420d0c7f2c

  • SHA256

    a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489

  • SHA512

    f15fcc52399f0004e179bf6cd9e7f03a75b744f5af09c67fc1f70e1ca0aa6449536b6e06951431accd0b6037e729f4562380b7e16962fdf6fe115b4e947fd435

  • SSDEEP

    12288:QC3wdew5NKr6XvipKVm8cdZV6UMb+DjFgJco/D691U:QAmewTW6fipKpS2HuFTyDh

Score
7/10
discovery

Malware Config

Targets

    • Target

      a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489.exe

    • Size

      589KB

    • MD5

      5176284ccdb6245cc137f00fe91fb654

    • SHA1

      26df9fc2dd605de3d9934d2425c032420d0c7f2c

    • SHA256

      a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489

    • SHA512

      f15fcc52399f0004e179bf6cd9e7f03a75b744f5af09c67fc1f70e1ca0aa6449536b6e06951431accd0b6037e729f4562380b7e16962fdf6fe115b4e947fd435

    • SSDEEP

      12288:QC3wdew5NKr6XvipKVm8cdZV6UMb+DjFgJco/D691U:QAmewTW6fipKpS2HuFTyDh

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/AdvSplash.dll

    • Size

      6KB

    • MD5

      7a514e97fb29eccff3c7ab5147f4de9a

    • SHA1

      e573f6e51d26d5601c68b7370fa94a030e561a9f

    • SHA256

      5e71559df5cbcc4d98ebd9d4ddffabe18b047f9a50d98a96e46a4c0ac589105c

    • SHA512

      f320dd5b60c5f1a6cba69b399d32151ca13c2b10f873f0c3cc05c3f1707ca80b396c5fc71175269117e0a6c13e56c51b89ea1dee47879fcc62d29f6ea8087604

    • SSDEEP

      96:0NcIcmLEjNev3O2obNnNlXUjDftqlqCstWpgwoS:xIpLSG3O9XX+qlqntWpg

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      960a5c48e25cf2bca332e74e11d825c9

    • SHA1

      da35c6816ace5daf4c6c1d57b93b09a82ecdc876

    • SHA256

      484f8e9f194ed9016274ef3672b2c52ed5f574fb71d3884edf3c222b758a75a2

    • SHA512

      cc450179e2d0d56aee2ccf8163d3882978c4e9c1aa3d3a95875fe9ba9831e07ddfd377111dc67f801fa53b6f468a418f086f1de7c71e0a5b634e1ae2a67cd3da

    • SSDEEP

      192:jVL7iZJX76BiqsO7+UZEw+RlthVEoC0O3XB:g7ssOpZs/hS3X

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      8ced0b79f7b9033d0795aab3be6d627c

    • SHA1

      90c2043ffccd068f407c624c50ac7b795db1e132

    • SHA256

      495bddc0be6e18e981db82fab9d1de55c7e269ab4ec3ff43035193bc017a307b

    • SHA512

      e38f63a342729f5ff6d0db607d7877b65c33ed19e2b5a97dd868ece8c2a3e829d4153624943444be2f0de885496161d54c1da9594bdc0a5a0bcc8b727e2facb0

    • SSDEEP

      96:3Rp41CMj95rKhkfL5RkEdKkcxM2DjDf3GEEE9v5E9av+Yx4indY7ndS27gA:3RujesS4HREEK5MYxDdqn420

    Score
    3/10
    discovery
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks